Lucene search

K

CVE-2022-38212

🗓️ 30 Dec 2022 05:00:13Reported by EsriType 
cve
 cve
🔗 web.nvd.nist.gov👁 40 Views

Protections against SSRF vulnerabilities in Esri Portal for ArcGIS versions 10.8.1 and below not fully honored, allowing remote, unauthenticated attacker to forge requests to arbitrary URLs

Show more
Related
Detection
Affected
Refs
Nvd
Node
esriportal_for_arcgisRange10.8.1
[
  {
    "vendor": "Esri",
    "product": "ArcGIS Enterprise",
    "versions": [
      {
        "version": "Portal for ArcGIS",
        "status": "affected",
        "lessThanOrEqual": "10.9.1",
        "versionType": "custom"
      }
    ],
    "platforms": [
      "x64"
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
30 Dec 2022 05:13Current
7.8High risk
Vulners AI Score7.8
CVSS37.5
EPSS0.002
40
.json
Report